https://bugzilla.redhat.com/show_bug.cgi?id=1725807
--- Comment #8 from Joshua Padman jpadman@redhat.com --- Statement:
OpenDaylight provided as part of Red Hat OpenStack does not utilize logback when used in a supported configuration. Therefore, the prerequisites for this vulnerability are not present and OpenDaylight is not affected.